openshift / jenkins

Apache License 2.0
260 stars 446 forks source link

OCPBUGS-2541: configuration-as-code bumped to 1569.vb_72405b_80249 #1594

Closed otaviof closed 1 year ago

otaviof commented 1 year ago

Plugin configuration-as-code bumped to mitigate CVE-2022-42889

otaviof commented 1 year ago

/assign @coreydaley @jkhelil

openshift-ci-robot commented 1 year ago

@otaviof: This pull request references Jira Issue OCPBUGS-2541, which is invalid:

Comment /jira refresh to re-evaluate validity if changes to the Jira bug are made, or edit the title of this pull request to link to a different bug.

The bug has been updated to refer to the pull request using the external bug tracker.

In response to [this](https://github.com/openshift/jenkins/pull/1594): >Plugin `configuration-as-code` bumped to mitigate CVE-2022-42889 Instructions for interacting with me using PR comments are available [here](https://git.k8s.io/community/contributors/guide/pull-requests.md). If you have questions or suggestions related to my behavior, please file an issue against the [kubernetes/test-infra](https://github.com/kubernetes/test-infra/issues/new?title=Prow%20issue:) repository.
divyansh42 commented 1 year ago

/retitle OCPBUGS-2541: configuration-as-code bumped to 1569.vb_72405b_80249

divyansh42 commented 1 year ago

/lgtm

otaviof commented 1 year ago

/retest

otaviof commented 1 year ago

/retest

coreydaley commented 1 year ago

/retest

coreydaley commented 1 year ago

/jira refresh

openshift-ci-robot commented 1 year ago

@coreydaley: This pull request references Jira Issue OCPBUGS-2541, which is valid. The bug has been moved to the POST state.

3 validation(s) were run on this bug * bug is open, matching expected state (open) * bug target version (4.14.0) matches configured target version for branch (4.14.0) * bug is in the state ASSIGNED, which is one of the valid states (NEW, ASSIGNED, POST)

Requesting review from QA contact: /cc @jitendar-singh

The bug has been updated to refer to the pull request using the external bug tracker.

In response to [this](https://github.com/openshift/jenkins/pull/1594#issuecomment-1455389092): >/jira refresh Instructions for interacting with me using PR comments are available [here](https://git.k8s.io/community/contributors/guide/pull-requests.md). If you have questions or suggestions related to my behavior, please file an issue against the [kubernetes/test-infra](https://github.com/kubernetes/test-infra/issues/new?title=Prow%20issue:) repository.
openshift-ci-robot commented 1 year ago

/retest-required

Remaining retests: 0 against base HEAD 4f135b7af939faab08a65e4fffa3f89a12eed19e and 2 for PR HEAD 14300e90f32a3c691eab72cac9ec348406f65c06 in total

openshift-ci-robot commented 1 year ago

/retest-required

Remaining retests: 0 against base HEAD 0420f887caf929fc2b6b8404ed9ba524595acaaf and 1 for PR HEAD 14300e90f32a3c691eab72cac9ec348406f65c06 in total

otaviof commented 1 year ago
2023-03-03 12:13:23 SEVERE  hudson.PluginManager$1$3$2$1 reactOnCycle found cycle in plugin dependencies: (root=Plugin:sshd, deactivating all involved) Plugin:sshd -> Plugin:mina-sshd-api-core -> Plugin:ssh-credentials -> Plugin:credentials -> Plugin:configuration-as-code -> Plugin:commons-text-api -> Plugin:commons-lang3-api -> Plugin:sshd

Patching the plugins list to avoid cyclic dependencies.

otaviof commented 1 year ago

/retest

ERRO[2023-03-06T10:22:53Z] 
  * could not run steps: step e2e-aws failed: "e2e-aws" pre steps failed: "e2e-aws" pod "e2e-aws-ipi-install-install" failed: the pod ci-op-15ph6v22/e2e-aws-ipi-install-install failed after 1h2m52s (failed containers: test): ContainerFailed one or more containers exited 
coreydaley commented 1 year ago

@otaviof You are missing some plugin dependency updates: https://gcsweb-ci.apps.ci.l2s4.p1.openshiftapps.com/gcs/origin-ci-test/pr-logs/pull/openshift_jenkins/1594/pull-ci-openshift-jenkins-master-e2e-aws-jenkins-sync-plugin/1632696897783205888/artifacts/e2e-aws-jenkins-sync-plugin/gather-extra/artifacts/pods/jenkins-sync-plugin-test-namespace-gg4v2_jenkins-1-587zv_jenkins.log

otaviof commented 1 year ago

@otaviof You are missing some plugin dependency updates: https://gcsweb-ci.apps.ci.l2s4.p1.openshiftapps.com/gcs/origin-ci-test/pr-logs/pull/openshift_jenkins/1594/pull-ci-openshift-jenkins-master-e2e-aws-jenkins-sync-plugin/1632696897783205888/artifacts/e2e-aws-jenkins-sync-plugin/gather-extra/artifacts/pods/jenkins-sync-plugin-test-namespace-gg4v2_jenkins-1-587zv_jenkins.log

Well, in fact, I'm trying to tackle this situation:

2023-03-06 11:48:11 SEVERE  hudson.PluginManager$1$3$2$1 reactOnCycle found cycle in plugin dependencies: (root=Plugin:sshd, deactivating all involved) Plugin:sshd -> Plugin:mina-sshd-api-core -> Plugin:ssh-credentials -> Plugin:credentials -> Plugin:configuration-as-code -> Plugin:commons-text-api -> Plugin:commons-lang3-api -> Plugin:sshd
openshift-ci[bot] commented 1 year ago

@otaviof: all tests passed!

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available [here](https://git.k8s.io/community/contributors/guide/pull-requests.md). If you have questions or suggestions related to my behavior, please file an issue against the [kubernetes/test-infra](https://github.com/kubernetes/test-infra/issues/new?title=Prow%20issue:) repository. I understand the commands that are listed [here](https://go.k8s.io/bot-commands).
otaviof commented 1 year ago

/assign @divyansh42 @coreydaley

coreydaley commented 1 year ago

/lgtm

openshift-ci[bot] commented 1 year ago

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: coreydaley, divyansh42, otaviof

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files: - ~~[OWNERS](https://github.com/openshift/jenkins/blob/master/OWNERS)~~ [coreydaley,divyansh42,otaviof] Approvers can indicate their approval by writing `/approve` in a comment Approvers can cancel approval by writing `/approve cancel` in a comment
openshift-ci-robot commented 1 year ago

@otaviof: Jira Issue OCPBUGS-2541: All pull requests linked via external trackers have merged:

Jira Issue OCPBUGS-2541 has been moved to the MODIFIED state.

In response to [this](https://github.com/openshift/jenkins/pull/1594): >Plugin `configuration-as-code` bumped to mitigate CVE-2022-42889 Instructions for interacting with me using PR comments are available [here](https://git.k8s.io/community/contributors/guide/pull-requests.md). If you have questions or suggestions related to my behavior, please file an issue against the [kubernetes/test-infra](https://github.com/kubernetes/test-infra/issues/new?title=Prow%20issue:) repository.
coreydaley commented 1 year ago

/cherry-pick release-4.13

openshift-cherrypick-robot commented 1 year ago

@coreydaley: new pull request created: #1616

In response to [this](https://github.com/openshift/jenkins/pull/1594#issuecomment-1458310696): >/cherry-pick release-4.13 Instructions for interacting with me using PR comments are available [here](https://git.k8s.io/community/contributors/guide/pull-requests.md). If you have questions or suggestions related to my behavior, please file an issue against the [kubernetes/test-infra](https://github.com/kubernetes/test-infra/issues/new?title=Prow%20issue:) repository.